CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2007-4043
https://notcve.org/view.php?id=CVE-2007-4043
27 Jul 2007 — file.cgi in Secure Computing SecurityReporter (aka Network Security Analyzer) before 4.6.3 allows remote attackers to bypass authentication via a name parameter ending with a "%00.gif" sequence. NOTE: a separate traversal vulnerability could be leveraged to download arbitrary files. file.cgi de Secure Computing SecurityReporter (también conocido como Network Security Analyzer) versiones anteriores a 4.6.3 permite a atacantes remotos evitar autenticación mediante un nombre de parámetro que finaliza con una s... • http://marc.info/?l=bugtraq&m=118522960430476&w=2 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 2CVE-2007-3985
https://notcve.org/view.php?id=CVE-2007-3985
25 Jul 2007 — Directory traversal vulnerability in file.cgi in Secure Computing SecurityReporter (aka Network Security Analyzer) 4.6.3 allows remote attackers to download arbitrary files via a .. (dot dot) in the name parameter. Vulnerabilidad de salrot de directorio en file.cgi de Secure Computing SecurityReporter (también conocido como Network Security Analyzer) 4.6.3 permite a atacantes remotos descargar ficheros de su elección mediante un .. (punto punto) en el parámetro name. • http://marc.info/?l=bugtraq&m=118522960430476&w=2 •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 2CVE-2007-3986
https://notcve.org/view.php?id=CVE-2007-3986
25 Jul 2007 — file.cgi in Secure Computing SecurityReporter (aka Network Security Analyzer) 4.6.3 allows remote attackers to bypass authentication via a name parameter that specifies the eventcache directory and a non-GIF file, which causes the $dontvalidate variable to be set to true. NOTE: a separate traversal vulnerability could be leveraged to download arbitrary files. file.cgi en Secure Computing SecurityReporter (también conocido como Network Security Analyzer) 4.6.3 permite a atacantes remotos evitar la validación... • http://marc.info/?l=bugtraq&m=118522960430476&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2007-3445
https://notcve.org/view.php?id=CVE-2007-3445
27 Jun 2007 — Buffer overflow in SJ Labs SJphone 1.60.303c, running under Windows Mobile 2003 on the Samsung SCH-i730 phone, allows remote attackers to cause a denial of service (device hang and call termination) via a malformed SIP INVITE message, a different vulnerability than CVE-2007-3351. Desbordamiento de búfer en SJ Labs SJphone 1.60.303c, al ejecutarse bajo Windows Mobile 2003 en el teléfono Samsung SCH-i730, permite a atacantes remotos provocar una denegación de servicio (cuelgue del dispositivo y terminación de... • http://osvdb.org/45404 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2006-5303
https://notcve.org/view.php?id=CVE-2006-5303
17 Oct 2006 — Secure Computing SafeWord RemoteAccess 2.1 allows local users to obtain the UserCenter webportal password, database encryption keys, and signing keys by reading (1) base-64 encoded data in SERVERS\Web\Tomcat\usercenter\WEB-INF\login.conf and (2) plaintext data in SERVERS\Shared\signers.cfg. NOTE: the provenance of this information is unknown; the details are obtained from third party information. Secure Computing SafeWord RemoteAccess 2.1 permite a usuarios locales obtener la contraseña, claves de codificac... • http://secunia.com/advisories/22081 •
CVSS: 9.1EPSS: 0%CPEs: 4EXPL: 0CVE-2006-4613
https://notcve.org/view.php?id=CVE-2006-4613
07 Sep 2006 — Multiple unspecified vulnerabilities in SnapGear before 3.1.4u1 allow remote attackers to cause a denial of service via unspecified vectors involving (1) IPSec replay windows and (2) the use of vulnerable versions of ClamAV before 0.88.4. NOTE: it is possible that vector 2 is related to CVE-2006-4018. Múltiples vulnerabilidades no específicas en SnapGear anterior a 3.1.4u1 permite a un atacante remoto provocar denegación de servicio a través de vectores no especificados que influyen en (1) la repitición de ... • http://secunia.com/advisories/21707 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 2CVE-2005-0864
https://notcve.org/view.php?id=CVE-2005-0864
24 Mar 2005 — The Boa web server, as used in Samsung ADSL Modem SMDK8947v1.2 and possibly other products, allows remote attackers to read arbitrary files via a full pathname in the HTTP request. • http://exploitlabs.com/files/advisories/EXPL-A-2005-002-samsung-adsl.txt •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2005-0865
https://notcve.org/view.php?id=CVE-2005-0865
24 Mar 2005 — Samsung ADSL Modem SMDK8947v1.2 uses default passwords for the (1) root, (2) admin, or (3) user users, which allows remote attackers to gain privileges via Telnet or an HTTP request to adsl.cgi. • http://exploitlabs.com/files/advisories/EXPL-A-2005-002-samsung-adsl.txt •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2004-2399
https://notcve.org/view.php?id=CVE-2004-2399
31 Dec 2004 — Secure Computing Corporation Sidewinder G2 6.1.0.01 allows remote attackers to cause a denial of service (CPU consumption) via delayed responses to DNS queries. • http://www.osvdb.org/6231 •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2004-2543
https://notcve.org/view.php?id=CVE-2004-2543
31 Dec 2004 — Secure Computing Corporation Sidewinder G2 6.1.0.01 might allow remote attackers to cause a denial of service (proxy failure) via invalid traffic to the (1) T.120 or (2) RTSP proxy, or (3) invalid MIME messages to the mail filter. NOTE: this might not be a vulnerability because the embedded monitoring sub-system automatically restarts after the failure. • http://secunia.com/advisories/11632 •